Forum List Message List New Topic
Mynameisbt
Pull Email field out of User PKI certificate
January 21, 2020 10:54AM
Hi,

I am working with an application that uses PKI authentication. In my application the user's certificate will have an email field and my application will need to get access to it from the certificate.

I was looking at the NGINX HTTP SSL Module documentation http://nginx.org/en/docs/http/ngx_http_ssl_module.html#variables as a reference. I see embedded variables for certain information in the certificate like the User DN, Serial, Start & End Date, etc... but did not see any way to pull out an email. Would it be possible to extract the email and send it to the application using NGINX like the other fields?

If not what would be the best way to do it? One option I can see is to send the entire certificate to the application and process it there using the $ssl_client_escaped_cert variable. Is that viable? Are there any other approaches that you can recommend?

Thanks
Reply Quote
Newer Topic Older Topic
Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 192
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready